CVE-2005-2634

Опубликовано: 23 авг. 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long request.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036173.html
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=112431455512374&w=2
http://secunia.com/advisories/16461/
Vendor Advisory
http://www.autistici.org/fdonato/advisory/WinFtpServer1.6.8-adv.txt
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/14581
https://exchange.xforce.ibmcloud.com/vulnerabilities/21873
http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/036173.html
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=112431455512374&w=2
http://secunia.com/advisories/16461/
Vendor Advisory
http://www.autistici.org/fdonato/advisory/WinFtpServer1.6.8-adv.txt
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/14581
https://exchange.xforce.ibmcloud.com/vulnerabilities/21873

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:winftp_server:winftp_server:1.6.8:*:*:*:*:*:*:*

EPSS

Процентиль: 90%

0.05514

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xhr8-rwrh-56m7

github

почти 4 года назад